Remote Code Execution in Lynx WWW Client via Command-Line Parameter Injection

Remote Code Execution in Lynx WWW Client via Command-Line Parameter Injection

CVE-1999-0817 · HIGH Severity

AV:N/AC:L/AU:N/C:C/I:C/A:C

Lynx WWW client allows a remote attacker to specify command-line parameters which Lynx uses when calling external programs to handle certain protocols, e.g. telnet.

Learn more about our External Network Penetration Testing.